# {{ ansible_managed }} {% if ansible_default_ipv4.address == dns_primary %} ################################# # allow-dnsupdate-from A global setting to allow DNS updates from these IP ranges. # # allow-dnsupdate-from=127.0.0.0/8,::1 allow-dnsupdate-from=127.0.0.0/8,::1,{{ dhcpd_primary }}{% if dhcpd_secondary is defined %},{{ dhcpd_secondary }}{% endif %} ################################# # dnsupdate Enable/Disable DNS update (RFC2136) support. Default is no. # # dnsupdate=no dnsupdate=yes {% endif %} ################################# # launch Which backends to launch and order to query them in # # launch= launch=bind,gsqlite3 ################################# # local-address Local IP addresses to which we bind # # local-address=0.0.0.0 local-address=127.0.0.1 ################################# # local-ipv6 Local IP address to which we bind # # local-ipv6=:: local-ipv6= ################################# # local-port The port on which we listen # # local-port=53 local-port=5300 {% if ansible_default_ipv4.address == dns_primary %} ################################# # master Act as a master # # master=no master=yes {% if dns_secondary is defined %} ################################# # only-notify Only send AXFR NOTIFY to these IP addresses or netmasks # # only-notify=0.0.0.0/0,::/0 only-notify={{ dns_secondary }} {% endif %} {% endif %} ################################# # security-poll-suffix Domain name from which to query security update notifications # # security-poll-suffix=secpoll.powerdns.com. security-poll-suffix= ################################# # setgid If set, change group id to this gid for more security # setgid=pdns ################################# # setuid If set, change user id to this uid for more security # setuid=pdns {% if dns_secondary is defined and ansible_default_ipv4.address == dns_secondary %} ################################# # slave Act as a slave # # slave=no slave=yes ################################# # trusted-notification-proxy IP address of incoming notification proxy # # trusted-notification-proxy= trusted-notification-proxy=127.0.0.1,::1 {% endif %} ################################# # bind-config Location of named.conf # bind-config=/etc/powerdns/bindbackend.conf ################################# # gsqlite3-database Filename of the SQLite3 database # # gsqlite3-database= gsqlite3-database=/var/lib/powerdns/pdns.sqlite3